Posted on 07/13/2009 7:33:26 AM PDT by TDCAnalyst
North Korea celebrated America’s Fourth of July by launching a wide-ranging cyber assault on websites in South Korea and the U.S., including that of the Treasury Department and Secret Service. The attack is not only a significant escalation by the DPRK, but a demonstration of how the U.S. remains vulnerable to a covert operation by a rogue state or terrorists that can be as devastating as a WMD attack.
The North Korean offensive began after Lab 110, a group of top hackers working for the military, were given instructions in May to “destroy” the communication infrastructure of South Korea. One government agency and security firm monitoring the attacks says that more are on the way, and that the next wave would target personal computers and may involve the erasing of hard drives.
The attacks represent only a fraction of North Korea’s total cyber warfare capabilities. A military study in 2006 concluded that North Korea’s hackers could shut down the Pacific Command and cause significant damage to mainland computer networks. One expert says that the DPRK’s hacking abilities now rivals that of the CIA.
Students are being trained in five-year electronic warfare programs at Mirim College, enabling the creation of a force of between 600 and 1,000 expert hackers. One study says that the government has a total force of 12,000 for cyber warfare with an annual budget of $56 million. North Korea was given a ranking of eighth place among all countries with such capabilities.
Cyber attacks seem to be becoming the new preferred method of waging unconventional warfare by adversaries of the U.S. Russia in particular has been very aggressive. Cyber attacks traced back to Russian government servers targeted Estonian websites, including that of the presidency, almost every government agency, banks, and top news websites for three weeks...
(Excerpt) Read more at frontpagemag.com ...
Seems to me that an EMP (or the associated mushroom cloud) generated by a few nuclear warheads would stop these attacks cold. If we only had the will...
Yeah, we really fell to our knees on July 4th this year. The lines at the gas station, supermarkets, and emergency shelters were wickedly long. We were totally devastated. /sarc>
Yeah, let’s bomb those Commies back to the 1800’s! Oh wait...
Thoughtful piece by John Robb on Network Command vs Cybercommand for US govt. and military:
http://globalguerrillas.typepad.com/globalguerrillas/2009/06/not-cyber-command-network-command.html
NOT CYBER COMMAND, NETWORK COMMAND!
Here’s some thinking on the mission of Cyber Command that may be helpful. I’ve had more than a few concerns about the idea of Cyber Command (which is about to suck in tens of billions of $$).
Conceptually, it seems malformed and it doesn’t appear to comport to the real world mission environment. Worse, it also seems that the defense contractors will soon enter this environment, and with their entry (which will focus on selling the legacy systems and skill sets that they currently own or are building) any hope of rationalizing our spending with strategy will become remote.
IF that happens, we will be caught in a funding loop, and redirecting existing spending (allocated to systems, people and thinking that have little applicability to the mission environment) to real world strategic and tactical needs will be impossible. Here’s the conceptual problem. Cyber defense and offense doesn’t occur in a vacuum. It is actually only a part of a much more important part of warfare: the defense and disruption of networks.
The big difference between warfare in this century and the last is that we now live in an interconnected world. There are physical and logical networks that underly our most basic functions — from DoD to government to economic. Further, there are information and social networks that underly our moral and psychological cohesion (rumors, viral stories, etc can blast open holes in our social fabric and create non-cooperative centers of gravity). The upshot is that the US should be building a “Network Command” and not a Cyber Command.
Here’s a quick summary of its four focus areas:
* The defense of physical and logical networks that underly organizational and commercial function. This not only means the defense of US networks, but global and targeted local networks (i.e. Iraq) as well. The vast majority of the most damaging attacks on networks that have occurred have been physical. Physical attacks on critical networks shut down Iraq’s economy for nearly 3 years. Recently, in Mexico, two physical attacks on a natural gas pipeline system cost the Mexican economy $2.5 billion. Therefore, the ability to accurately map, monitor, and rapidly secure (after being invited in) these networks from both physical and logical attacks is paramount (external: from small hacker/guerrilla groups, internal: from employees intent on sabotage). Securing critical networks involves everything from physical/logical security of critical nodes to sensor grids/UAVs that secure transmission networks (think in terms of how you would secure Saudi Arabia’s infrastructure during a crisis — to prevent a catastrophic shutdown during a period of turmoil).
* Offensive network operations involves both physical and logical attacks on a target countries critical networks. Dominance of these networks is critical to victory in any conflict. Network dominance of infrastructure networks through both physical and logical attack. This rationalizes the ideas behind “effects based operations” and once fleshed out can be used to eliminate the “fluffy” thinking that EBO thinking is plagued by.
* The defense of social and information networks is critical to maintaining social/psychological cohesion. This efforts works to shore up our own networks as well as extend them (to allies). It also works to shut down emergent viral vectors (information) that can cascade through social/information networks wrecking havoc.
* The offensive version of this type of network warfare is to break the cohesion of the social systems of the enemy through impeding their ability to keep their network cohesive and introducing viral information that causes their networks to cleave. This type of social/information warfare rationalizes the ideas behind Information Operations and Strategic Communications.
Anyway, this is a high level view of a way forward that is both understandable (by everyone involved) and applicable to the real world mission environment. It also finds a home for what are now disconnected and essentially adrift efforts (IO, SC, Cyber, etc.).
Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.